Lucene search
K

19190 matches found

OSV
OSV
added 2025/10/21 9:35 p.m.5 views

CLSA-2025-1761082525 Fix CVE(s): CVE-2022-45141

SECURITY UPDATE: AD DC can be forced to issue rc4-hmac Kerberos tickets - debian/patches/CVE-2022-45141.patch: fix session key selection algorithm for selecting the ticket in strongest-to-weakest order, thus allowing the target server to select better encryption - CVE-2022-45141...

9.8CVSS5.8AI score0.00454EPSS
Exploits0References1
Snyk
Snyk
added 2025/10/21 8:26 p.m.1 views

Use of Hard-coded Cryptographic Key

Overview Affected versions of this package are vulnerable to Use of Hard-coded Cryptographic Key for encrypting sensitive configurations when NeuVector stores data. The static key can be used to retrieve configuration data. Remediation Upgrade github.com/neuvector/neuvector/controller/kv to versi...

7.1CVSS6.9AI score0.00242EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/21 8:26 p.m.3 views

Use of Hard-coded Cryptographic Key

Overview Affected versions of this package are vulnerable to Use of Hard-coded Cryptographic Key for encrypting sensitive configurations when NeuVector stores data. The static key can be used to retrieve configuration data. Remediation Upgrade github.com/neuvector/neuvector/controller/rest to...

7.1CVSS6.9AI score0.00242EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/21 8:26 p.m.1 views

Use of Hard-coded Cryptographic Key

Overview Affected versions of this package are vulnerable to Use of Hard-coded Cryptographic Key for encrypting sensitive configurations when NeuVector stores data. The static key can be used to retrieve configuration data. Remediation Upgrade github.com/neuvector/neuvector/controller/common to...

7.1CVSS6.9AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987703)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987703 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset...

5.5CVSS5.9AI score0.00247EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987522)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987522 advisory. In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the...

4.7CVSS6AI score0.00199EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/20 5:26 p.m.7 views

CVE-2025-40001

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

4.4CVSS5.6AI score0.00236EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/20 12:0 a.m.4 views

ABB ALS-mini-s4 IP和ABB ALS-mini-s8 IP 访问控制错误漏洞

The ABB ALS-mini-s4 IP and ABB ALS-mini-s8 IP are both intelligent load management controllers from ABB Switzerland. An access control error vulnerability exists in the ABB ALS-mini-s4 IP and ABB ALS-mini-s8 IP that stems from a lack of authentication for critical functions...

10CVSS7AI score0.00754EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/10/18 3:33 p.m.206 views

Exploit for CVE-2020-1472

Domain-Controller-DC-Exploitation-with-Metasploit-Impacket End...

10CVSS7.4AI score0.99512EPSS
Exploits75
OSV
OSV
added 2025/10/18 8:15 a.m.1 views

DEBIAN-CVE-2025-40001

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

5.4AI score0.00236EPSS
Exploits0References1
OSV
OSV
added 2025/10/18 8:15 a.m.4 views

AZL-68585 CVE-2025-40001 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

5.6AI score0.00236EPSS
Exploits0References1
OSV
OSV
added 2025/10/18 8:15 a.m.4 views

UBUNTU-CVE-2025-40001

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

5.7AI score0.00236EPSS
Exploits0References38
Cvelist
Cvelist
added 2025/10/18 8:3 a.m.13 views

CVE-2025-40001 scsi: mvsas: Fix use-after-free bugs in mvs_work_queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

0.00236EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/10/18 8:3 a.m.1 views

CVE-2025-40001

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

5.3AI score0.00236EPSS
Exploits0
OSV
OSV
added 2025/10/18 8:3 a.m.9 views

CVE-2025-40001 scsi: mvsas: Fix use-after-free bugs in mvs_work_queue

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

6.3AI score0.00236EPSS
Exploits0References11
Microsoft CVE
Microsoft CVE
added 2025/10/18 1:1 a.m.4 views

platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it

...

5.5CVSS7AI score0.00238EPSS
Exploits0
CNVD
CNVD
added 2025/10/17 12:0 a.m.2 views

Rockwell Automation ArmorStart AOP Denial of Service Vulnerability

Rockwell Automation ArmorStart AOP is a distributed motor controller from Rockwell Automation. The Rockwell Automation ArmorStart AOP suffers from a denial of service vulnerability that originates from entering an invalid value into a COM method, which can be exploited by an attacker to cause a...

8.7CVSS6.8AI score0.00345EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/16 11:38 p.m.5 views

SUSE CVE-2025-10230

A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active...

10CVSS6.9AI score0.39677EPSS
Exploits2References11
SUSE CVE
SUSE CVE
added 2025/10/16 11:24 p.m.3 views

SUSE CVE-2025-39987

In the Linux kernel, the following vulnerability has been resolved: can: hi311x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the PFPACKET...

5.5CVSS7AI score0.0022EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2025/10/16 12:30 p.m.11 views

CVE-2025-39988

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the...

5.5CVSS6.3AI score0.00215EPSS
Exploits0References4
Rows per page
Query Builder